Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > linux.debian.doc > #7857
| From | Marc Haber <mh+debian-packages@zugschlus.de> |
|---|---|
| Newsgroups | linux.debian.bugs.dist, linux.debian.doc |
| Subject | Bug#1126353: sudo (in trixie) does not read sudoers.d files with colons in file name |
| Date | 2026-01-24 18:00 +0100 |
| Message-ID | <MgP9n-d1r8-1@gated-at.bofh.it> (permalink) |
| Organization | linux.* mail to news gateway |
Cross-posted to 2 groups.
Package: release-notes Severity: important Tags: security X-Debbugs-Cc: Debian Security Team <team@security.debian.org> Hi, I would like to ask the release notes team whether we should, while a technical solution is pending, add language regarding #1126085 to the trixie release notes (and maybe also to the bookworm release notes) that the sudo in those stable releases won't read /etc/sudoers.d files that contain colons in their file name, like /etc/sudoers.d/10_dsa::util::sudo[dfsg-team-role] but instead wrongly report "no such file or directory". Adam correctly points out that this behavior of sudo might either cause system breakage or introduce security flaws because files that used to be processed in the past are not processed any more. I concur with his judgement that #1126085 is an RC bug. I am willing to provide a paragraph for the release notes if you indicate that this would be a good workaround while we wait for upstream to comment whether there might be a better technical solution for the issue. Greetings Marc
Back to linux.debian.doc | Previous | Next — Next in thread | Find similar
Bug#1126353: sudo (in trixie) does not read sudoers.d files with colons in file name Marc Haber <mh+debian-packages@zugschlus.de> - 2026-01-24 18:00 +0100 Bug#1126353: sudo (in trixie) does not read sudoers.d files with colons in file name Marc Haber <mh+debian-packages@zugschlus.de> - 2026-01-25 16:50 +0100
csiph-web